Lecture 3 - Block Ciphers, DES Flashcards
Semantic Security
Relaxes perfect secrecy by allowing a tiny probability of security to fail (e.g. truly random distribution computationally indistinguishable from pseudorandom distribution)
What makes one-time key semantically secure?
If advantage is negligible for all efficient statistical tests (attacker can’t tell if you encrypted m1 or m2)
Are stream ciphers semantically secure?
Yes, assuming the PRG is semantically secure
What are block ciphers?
Block cipher maps n bits of plaintext to n bits of ciphertext
What are two examples of block ciphers?
3DES and AES
PRF (pseudorandom function)
The function takes a key and outputs something pseudorandom (but not necessarily invertible)
PRP (Pseudorandom Permutation)
K x X -> X (maps one to one in the same space) which makes it invertible
What makes a PRF secure?
If the uniform distribution of a PRF is indistinguishable from a truly random function’s uniform distribution (Eve can’t tell if she’s interacting with a random function or truly random function)
How is PRG secure?
If PRG based on secure PRF, it will also be secure. (PRG expands a key into a random keystream by concatenating f(k,0) || f(k,1)….) where f is prf
What is substitution?
Also called s-boxes that substitute one binary string for another
What is permutation?
Done with p-boxes. Binary string gets reordered
Confusion
Substitution. Relationship between key and ciphertext. If 1 bit of key gets modified, almost all bits of the ciphertext get modified
Diffusion
Permutation. Relationship between plaintext and ciphertext. One bit of changing plaintext will change multiple bits of ciphertext
What is the core idea behind DES?
Feistal Network: given arbitrary functions you build an invertible function (so that you can decrypt)
Are feistal networks secure?
Yes if built on secure prf/prp (e.g. 3 round fiestal network uses a prf on each round with a unique round key for each round. And the whole fiestal network becomes a secure PRP if based on secure PRF)